Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 33 replies
  • Subscribers 29 subscribers
  • Views 21038 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VM setup for XG Firewall Home Edition

RayGo1975

I am using ProxMox VE on an HP pavilion laptop with one internal NIC and a USB-NIC adapter.

In my ProxMox setup I have the internal NIC (eno1) bridged to vmbr0 and the USB-NIC (enx.....) bridged to vmbr1. In creating the VE for Sophos XG Firewall Home Edition I have 6 GB of memory, 64 GB of disk space and two Network Interfaces, net0 (vmbr0) and net1 (vmbr1) see attached screen shot of the VM configuration.

In the e-mail I got with my serial number it says:

1. Install the downloaded image on your preferred hardware or virtual environment (Note the installation will overwrite the previous operating system and all files).

2. Connect the WAN interface (port 2) on the device to your internet connection.

3. Connect a computer to the LAN interface (port 1) and access the setup screen at 172.16.16.16:4444 (Note: It may take a few minutes for the necessary services to start before the setup screen is ready)

I have done number one. but I have not figured out which interface is port 1 and which is port 2. I have tried plugging the internal NIC (eno1) into my router and the USB-NIC into my laptop I am using to manage the VM. That did not work so I tried it the other way around, still no luck. 

When I try to go to the IP address given I get "This site can't be reached". 

You really need to write some instructions for the home user who is clueless about networks and things related to firewalls.

Here is a screen shot of my ProxMox network setup:

Any and all help is greatly appreciated.



This thread was automatically locked due to age.
  • 0 in reply to TrevorSymonds

    Hi,

    just did my first installation from an ISO for the first time in many XG releases and discovered there is now a lot of functionality in the CLI that wasn't there last time I installed from an ISO>

    Ian

  • 0 in reply to TrevorSymonds

    Some questions on your suggestions.

    TrevorSymonds said:
    one thing think that you can try is setting the IP on the CLI, meaning in the proxmox console... this will allow you to set the IP for the LAN interface to match you 192.168.1.x network.

    Do you mean set the eno1 to a static IP address in the /etc/network/interfaces file? Also should it be the same IP as the bridge vmbr0 or different?

    TrevorSymonds said:
    another easy option is to set up a small linux VM with a desktop on proxmox and give it access to the same vmbr0 interface.... then you can connect using the included firefox.... then you dont even have to worry about network cards...as it will all be internal to proxmox.

    I now have an ubuntu VM using the vmbr0 bridge as it's NIC. It took forever to install...

    Not sure what you mean by

    TrevorSymonds said:
    then you can connect using the included firefox
    as I would still need my control PC to get to the Ubuntu VM console. Is there a way to bring the Ubuntu console up on the PVE PC?

    adding a third machine is a little confusing.

    Please remember I am running this on an old laptop and it is stressing my CPU running any VM under proxmox.  I keep getting messages about my core temperature going above the threshold and being throttled back. just do not want it to catch on fire.

    I may have to buy a used desktop at a garage sale or swap meet and put this on hold until then.

  • 0 in reply to RayGo1975

    If you login to the cli you should see this:

    If you select 1 and follow prompts you can set the LAN ip address to something within your range.  (Avoid using Advanced Shell as much as possible)

    Option2

    Ubuntu would be great, no need for third VM... just Sophos VM and Ubuntu VM.... when in Ubuntu then open any browser and connect to the Sophos web gui.... as the Ubuntu VM and the Sophos VM are on the same NIC there should be no reason why ubuntu can not see sophos as long as they are both on the same vmbr0 (NIC) .... once you have configured Sophos you can delete the Ubuntu VM as you will no longer need it. Just make sure that Ubuntu has an ip in the same range as sophos default (172.16.16.X)